South Korean cell supplier SK Telecom has introduced free SIM card replacements to its 25 million cell clients following a latest USIM information breach, however solely 6 million playing cards can be found via Might.
SK Telecom is the nation’s largest cell community operator, serving roughly half of the home cell phone market.
On April 19, the corporate detected a malware operating on its community that allowed menace actors to steal clients’ Common Subscriber Id Module (USIM) information, sometimes together with Worldwide Cellular Subscriber Id (IMSI), Cellular Station ISDN Quantity (MSISDN), authentication keys, community utilization information, and SMS or contacts if saved on the SIM.
No buyer names, different identification particulars, or monetary data have been uncovered attributable to this incident.
The primary threat from this breach is the potential for menace actors to carry out unauthorized quantity ports to cloned SIM playing cards, often called “SIM swapping.”
In an replace revealed earlier right this moment, SK Telecom assured clients that such requests could be robotically detected and blocked by its Fraud Detection System (FDS) and SIM Safety Service, which have been enhanced to deal with the elevated threat.
Supply: SK Telecom
As of right this moment, SK Telecom can also be providing free-of-charge SIM card replacements to 25 million cell subscribers, together with roughly 2 million utilizing price range carriers, who’re nervous concerning the potential for SIM swapping assaults impacting them.
Nonetheless, the cell service warns that attributable to a scarcity of stock, they will solely substitute as much as 6 million SIM playing cards via Might 2025.
“At the moment, SK Telecom holds 1 million SIM playing cards and plans to safe 5 million extra by the tip of Might 2025,” reads the replace.
“As a result of potential congestion, clients are inspired to make use of the web reservation system (care.tworld.co.kr) to e-book their SIM alternative upfront.”
Solely clients who subscribed as of April 18, 2025, at midnight (Japan time), are eligible for SIM alternative.
In the meantime, the agency has revealed an FAQ concerning the cybersecurity incident, which states that investigations into the precise causes and scope are nonetheless ongoing however haven’t but confirmed “secondary injury or darkish net leaks.”
The FAQ additionally clarifies that roaming companies have been disabled for subscribers who’ve activated SIM Safety, however they plan to improve the characteristic to make it usable whereas overseas for optimum safety.
Lastly, all impacted clients will likely be receiving a personalised message with safety directions quickly.
